Medium severity6.1OSV Advisory· Published Dec 30, 2017· Updated Jun 17, 2026
CVE-2016-10704
CVE-2016-10704
Description
Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have XSS via e-mail templates that are mishandled during a preview, aka APPSEC-1503.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- Range: <2.0.10
- Range: <2.1.2
Patches
Vulnerability mechanics
References
1- magento.com/security/patches/magento-2010-and-212-security-updatenvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.